A sophisticated cyberespionage campaign with suspected Chinese connections has been uncovered, targeting Indian tax professionals and corporate finance departments with malware disguised as legitimate tax filing software. The attack leverages the sensitive nature of tax-related communications and the trust people place in official government communications during tax season to compromise systems and steal valuable financial information.

The threat actors, identified by security researchers at Seqrite Labs as part of "Operation DragonReturn," are employing carefully crafted spear-phishing emails that convincingly impersonate India's Income Tax Department.